[clang][Driver] Enable -fptrauth- ABI flags for arm64e-apple-darwin.

Author: ahmedbougacha

clang/lib/Driver/ToolChains/Darwin.cpp

@@ -1201,13 +1201,48 @@ void DarwinClang::addClangWarningOptions(ArgStringList &CC1Args) const {
   }
 }
 
+static bool useObjCIsaPtrauth(const Darwin &D) {
+  VersionTuple TargetVersion = D.getTripleTargetVersion();
+  if (D.isTargetMacCatalyst() || D.TargetEnvironment == Darwin::Simulator)
+    return true;
+  switch (D.TargetPlatform) {
+  case Darwin::IPhoneOS:
+  case Darwin::TvOS:
+    return TargetVersion >= VersionTuple(14, 5, 0);
+  case Darwin::WatchOS:
+  case Darwin::MacOS:
+  case Darwin::DriverKit:
+    return true;
+  case Darwin::XROS:
+    return true;
+  }
+}
+
+static bool useCXXVTablePtrTypeAddressDiscrimination(const Darwin& D) {
+  VersionTuple TargetVersion = D.getTripleTargetVersion();
+  if (D.isTargetMacCatalyst())
+    return true;
+  switch (D.TargetPlatform) {
+  case Darwin::IPhoneOS:
+  case Darwin::TvOS:
+    return TargetVersion >= VersionTuple(15, 0, 0);
+  case Darwin::WatchOS:
+  case Darwin::MacOS:
+  case Darwin::DriverKit:
+    return true;
+  case Darwin::XROS:
+    return true;
+  }
+}
+
 void DarwinClang::addClangTargetOptions(
   const llvm::opt::ArgList &DriverArgs, llvm::opt::ArgStringList &CC1Args,
   Action::OffloadKind DeviceOffloadKind) const{
 
   Darwin::addClangTargetOptions(DriverArgs, CC1Args, DeviceOffloadKind);
 
-  // On arm64e, enable pointer authentication intrinsics.
+  // On arm64e, enable pointer authentication (for the return address and
+  // indirect calls), as well as usage of the intrinsics.
   if (getTriple().isArm64e()) {
     // The ptrauth ABI version is 0 by default, but can be overridden.
     static const constexpr unsigned DefaultPtrauthABIVersion = 0;
@@ -1241,9 +1276,87 @@ void DarwinClang::addClangTargetOptions(
         CC1Args.push_back("-fptrauth-kernel-abi-version");
     }
 
+    if (!DriverArgs.hasArg(options::OPT_fptrauth_returns,
+                           options::OPT_fno_ptrauth_returns))
+      CC1Args.push_back("-fptrauth-returns");
+
     if (!DriverArgs.hasArg(options::OPT_fptrauth_intrinsics,
                            options::OPT_fno_ptrauth_intrinsics))
       CC1Args.push_back("-fptrauth-intrinsics");
+
+    if (!DriverArgs.hasArg(options::OPT_fptrauth_calls,
+                           options::OPT_fno_ptrauth_calls))
+      CC1Args.push_back("-fptrauth-calls");
+
+    if (!DriverArgs.hasArg(options::OPT_fptrauth_indirect_gotos,
+                           options::OPT_fno_ptrauth_indirect_gotos))
+      CC1Args.push_back("-fptrauth-indirect-gotos");
+
+    if (!DriverArgs.hasArg(options::OPT_fptrauth_auth_traps,
+                           options::OPT_fno_ptrauth_auth_traps))
+      CC1Args.push_back("-fptrauth-auth-traps");
+
+    if (!DriverArgs.hasArg(options::OPT_fassume_unique_vtables,
+                           options::OPT_fno_assume_unique_vtables))
+      CC1Args.push_back("-fno-assume-unique-vtables");
+
+    if (useCXXVTablePtrTypeAddressDiscrimination(*this)) {
+      if (!DriverArgs.hasArg(
+          options::OPT_fptrauth_vtable_pointer_address_discrimination,
+          options::OPT_fno_ptrauth_vtable_pointer_address_discrimination))
+        CC1Args.push_back("-fptrauth-vtable-pointer-address-discrimination");
+
+      if (!DriverArgs.hasArg(
+          options::OPT_fptrauth_vtable_pointer_type_discrimination,
+          options::OPT_fno_ptrauth_vtable_pointer_type_discrimination))
+        CC1Args.push_back("-fptrauth-vtable-pointer-type-discrimination");
+    }
+
+    if (!DriverArgs.hasArg(options::OPT_fptrauth_objc_isa,
+                           options::OPT_fno_ptrauth_objc_isa)) {
+      if (useObjCIsaPtrauth(*this))
+        CC1Args.push_back("-fptrauth-objc-isa-mode=sign-and-auth");
+      else
+        CC1Args.push_back("-fptrauth-objc-isa-mode=sign-and-strip");
+    }
+
+    if (DriverArgs.hasArg(options::OPT_fapple_kext) ||
+        DriverArgs.hasArg(options::OPT_mkernel) || isTargetDriverKit()) {
+      if (!DriverArgs.hasArg(
+              options::OPT_fptrauth_block_descriptor_pointers,
+              options::OPT_fno_ptrauth_block_descriptor_pointers))
+        CC1Args.push_back("-fptrauth-block-descriptor-pointers");
+
+      if (!DriverArgs.hasArg(
+              options::OPT_fptrauth_vtable_pointer_address_discrimination,
+              options::OPT_fno_ptrauth_vtable_pointer_address_discrimination))
+        CC1Args.push_back("-fptrauth-vtable-pointer-address-discrimination");
+
+      if (!DriverArgs.hasArg(
+              options::OPT_fptrauth_vtable_pointer_type_discrimination,
+              options::OPT_fno_ptrauth_vtable_pointer_type_discrimination))
+        CC1Args.push_back("-fptrauth-vtable-pointer-type-discrimination");
+
+      if (!DriverArgs.hasArg(
+              options::OPT_fptrauth_function_pointer_type_discrimination,
+              options::OPT_fno_ptrauth_function_pointer_type_discrimination))
+        CC1Args.push_back("-fptrauth-function-pointer-type-discrimination");
+    }
+
+    if (DriverArgs.hasArg(options::OPT_fapple_kext) ||
+        DriverArgs.hasArg(options::OPT_mkernel)) {
+      // -fbranch-target-identification is a driver flag and isn't honored
+      // by -cc1.  For arm64e, -mbranch-target-enforce is the -cc1 spelling,
+      // derived from non-arm64e -mbranch-protection=.
+      // Catch all 3 here anyway.
+      if (!DriverArgs.hasArg(options::OPT_fbranch_target_identification,
+                             options::OPT_fno_branch_target_identification) &&
+          !DriverArgs.hasArg(options::OPT_mbranch_target_enforce) &&
+          !DriverArgs.hasArg(options::OPT_mbranch_protection_EQ)) {
+        CC1Args.push_back("-mbranch-target-enforce");
+      }
+    }
+
   }
 }
 

clang/test/Driver/arch-arm64e.c

@@ -1,22 +1,56 @@
 // Check that we can manually enable specific ptrauth features.
 
-// RUN: %clang -target arm64-apple-ios -c %s -### 2>&1 | FileCheck %s --check-prefix NONE
+// RUN: %clang -target arm64-apple-ios15 -c %s -### 2>&1 | FileCheck %s --check-prefix NONE
 // NONE: "-cc1"
 // NONE-NOT: "-fptrauth-intrinsics"
+// NONE-NOT: "-fptrauth-calls"
+// NONE-NOT: "-fptrauth-returns"
+// NONE-NOT: "-fptrauth-indirect-gotos"
+// NONE-NOT: "-fptrauth-auth-traps"
+// NONE-NOT: "-mbranch-target-enforce"
 
-// RUN: %clang -target arm64-apple-ios -fptrauth-intrinsics -c %s -### 2>&1 | FileCheck %s --check-prefix INTRIN
+// RUN: %clang -target arm64-apple-ios15 -fptrauth-calls -c %s -### 2>&1 | FileCheck %s --check-prefix CALL
+// CALL: "-cc1"{{.*}} {{.*}} "-fptrauth-calls"
+
+// RUN: %clang -target arm64-apple-ios15 -fptrauth-intrinsics -c %s -### 2>&1 | FileCheck %s --check-prefix INTRIN
 // INTRIN: "-cc1"{{.*}} {{.*}} "-fptrauth-intrinsics"
 
+// RUN: %clang -target arm64-apple-ios15 -fptrauth-returns -c %s -### 2>&1 | FileCheck %s --check-prefix RETURN
+// RETURN: "-cc1"{{.*}} {{.*}} "-fptrauth-returns"
+
+// RUN: %clang -target arm64-apple-ios15 -fptrauth-indirect-gotos -c %s -### 2>&1 | FileCheck %s --check-prefix INDGOTO
+// INDGOTO: "-cc1"{{.*}} {{.*}} "-fptrauth-indirect-gotos"
+
+// RUN: %clang -target arm64-apple-ios15 -fptrauth-auth-traps -c %s -### 2>&1 | FileCheck %s --check-prefix TRAPS
+// TRAPS: "-cc1"{{.*}} {{.*}} "-fptrauth-auth-traps"
+
+// RUN: %clang -target arm64-apple-ios15 -fbranch-target-identification -c %s -### 2>&1 | FileCheck %s --check-prefix BTI
+// BTI: "-cc1"{{.*}} {{.*}} "-mbranch-target-enforce"
+
 
 // Check the arm64e defaults.
+// isa signing depends on the target OS and is tested elsewhere.
+
+// RUN: %clang -target arm64e-apple-ios15 -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT
+// RUN: %clang -mkernel -target arm64e-apple-ios15 -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT-KERN
+// RUN: %clang -fapple-kext -target arm64e-apple-ios15 -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT-KERN
+// DEFAULT: "-fptrauth-returns" "-fptrauth-intrinsics" "-fptrauth-calls" "-fptrauth-indirect-gotos" "-fptrauth-auth-traps" "-fno-assume-unique-vtables" "-fptrauth-vtable-pointer-address-discrimination" "-fptrauth-vtable-pointer-type-discrimination" "-fptrauth-objc-isa-mode=sign-and-auth" "-target-cpu" "apple-a12"{{.*}}
+// DEFAULT-KERN: "-fptrauth-returns" "-fptrauth-intrinsics" "-fptrauth-calls" "-fptrauth-indirect-gotos" "-fptrauth-auth-traps" "-fno-assume-unique-vtables" "-fptrauth-vtable-pointer-address-discrimination" "-fptrauth-vtable-pointer-type-discrimination" "-fptrauth-objc-isa-mode=sign-and-auth" "-fptrauth-block-descriptor-pointers" "-fptrauth-vtable-pointer-address-discrimination" "-fptrauth-vtable-pointer-type-discrimination" "-fptrauth-function-pointer-type-discrimination" "-mbranch-target-enforce" "-target-cpu" "apple-a12"{{.*}}
 
-// RUN: %clang -target arm64e-apple-ios -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT
-// RUN: %clang -mkernel -target arm64e-apple-ios -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT-KERN
-// RUN: %clang -fapple-kext -target arm64e-apple-ios -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT-KERN
-// DEFAULT: "-fptrauth-intrinsics" "-target-cpu" "apple-a12"{{.*}}
-// DEFAULT-KERN: "-fptrauth-intrinsics" "-target-cpu" "apple-a12"{{.*}}
+// RUN: %clang -target arm64e-apple-ios15 -fno-ptrauth-calls -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT-NOCALL
+// RUN: %clang -mkernel -target arm64e-apple-ios15 -fno-ptrauth-calls -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT-KERN-NOCALL
+// RUN: %clang -fapple-kext -target arm64e-apple-ios15 -fno-ptrauth-calls -c %s -### 2>&1 | FileCheck %s --check-prefix DEFAULT-KERN-NOCALL
+// DEFAULT-NOCALL-NOT: "-fptrauth-calls"
+// DEFAULT-KERN-NOCALL-NOT: "-fptrauth-calls"
+// DEFAULT-NOCALL: "-fptrauth-returns" "-fptrauth-intrinsics" "-fptrauth-indirect-gotos" "-fptrauth-auth-traps" "-fno-assume-unique-vtables" "-fptrauth-vtable-pointer-address-discrimination" "-fptrauth-vtable-pointer-type-discrimination" "-fptrauth-objc-isa-mode=sign-and-auth" "-target-cpu" "apple-a12"{{.*}}
+// DEFAULT-KERN-NOCALL: "-fptrauth-returns" "-fptrauth-intrinsics" "-fptrauth-indirect-gotos" "-fptrauth-auth-traps" "-fno-assume-unique-vtables" "-fptrauth-vtable-pointer-address-discrimination" "-fptrauth-vtable-pointer-type-discrimination" "-fptrauth-objc-isa-mode=sign-and-auth" "-fptrauth-block-descriptor-pointers" "-fptrauth-vtable-pointer-address-discrimination" "-fptrauth-vtable-pointer-type-discrimination" "-fptrauth-function-pointer-type-discrimination" "-mbranch-target-enforce" "-target-cpu" "apple-a12"{{.*}}
 
-// RUN: %clang -target arm64e-apple-ios -fno-ptrauth-intrinsics -c %s -### 2>&1 | FileCheck %s --check-prefix NOINTRIN
 
+// RUN: %clang -target arm64e-apple-ios15 -fno-ptrauth-returns -c %s -### 2>&1 | FileCheck %s --check-prefix NORET
+// NORET-NOT: "-fptrauth-returns"
+
+// RUN: %clang -target arm64e-apple-ios15 -fno-ptrauth-intrinsics -c %s -### 2>&1 | FileCheck %s --check-prefix NOINTRIN
 // NOINTRIN-NOT: "-fptrauth-intrinsics"
-// NOINTRIN: "-target-cpu" "apple-a12"{{.*}}
+
+// RUN: %clang -target arm64e-apple-ios15 -fno-ptrauth-auth-traps -c %s -### 2>&1 | FileCheck %s --check-prefix NOTRAP
+// NOTRAP-NOT: "-fptrauth-auth-traps"

clang/test/Driver/ptrauth-block-descriptor.m

@@ -0,0 +1,8 @@
+// RUN: %clang -target arm64e-apple-ios %s -mkernel -### 2>&1 | FileCheck %s --check-prefix=YES
+// RUN: %clang -target arm64e-apple-ios %s -fapple-kext -### 2>&1 | FileCheck %s --check-prefix=YES
+// RUN: %clang -target arm64e-apple-ios %s -fapple-kext -fptrauth-block-descriptor-pointers -### 2>&1 | FileCheck %s --check-prefix=YES
+// RUN: %clang -target arm64e-apple-ios %s -### 2>&1 | FileCheck %s --check-prefix=NO
+// RUN: %clang -target arm64e-apple-ios %s -mkernel -fno-ptrauth-block-descriptor-pointers -### 2>&1 | FileCheck %s --check-prefix=NO
+
+// YES: "-cc1"{{.*}} "-fptrauth-block-descriptor-pointers"
+// NO-NOT: "-cc1"{{.*}} "-fptrauth-block-descriptor-pointers"

clang/test/Driver/ptrauth-objc-isa-mode-default.c

@@ -0,0 +1,32 @@
+// Test objc isa signing default based on target.
+
+// AUTH: "-fptrauth-objc-isa-mode=sign-and-auth"
+// STRIP: "-fptrauth-objc-isa-mode=sign-and-strip"
+
+// Enabled on iOS14.5+, tvOS14.5+.
+// RUN: %clang -target arm64e-apple-ios14.5            -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -target arm64e-apple-tvos14.5           -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+
+// Hence, enabled on iOS15+, tvOS15+.
+// RUN: %clang -target arm64e-apple-ios15              -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -target arm64e-apple-tvos15             -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+
+// Disabled on older OS versions
+// RUN: %clang -target arm64e-apple-ios14.4.0          -c %s -### 2>&1 | FileCheck %s --check-prefix STRIP
+// RUN: %clang -target arm64e-apple-tvos14.4.0         -c %s -### 2>&1 | FileCheck %s --check-prefix STRIP
+
+// Enabled on any macOS, watchOS, MacABI.
+// RUN: %clang -target arm64e-apple-macos12            -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -target arm64e-apple-macos11            -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -target arm64e-apple-ios15-macabi       -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -target arm64e-apple-ios14-macabi       -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -target arm64e-apple-watchos5           -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+
+// Enabled on any simulator targets as well.
+// RUN: %clang -target arm64e-apple-ios14-simulator    -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -target arm64e-apple-tvos14-simulator   -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -target arm64e-apple-watchos7-simulator -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+
+// Kernel doesn't care (but is exposed to block isa)
+// RUN: %clang -mkernel -target arm64e-apple-ios15     -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH
+// RUN: %clang -fapple-kext -target arm64e-apple-ios15 -c %s -### 2>&1 | FileCheck %s --check-prefix AUTH